This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft File: qZ9mmGknIBFUlstFlwLEOtxI1q0.mft (raw, json) Hash identifier: 4LsJSRjP+zMk1nCkMZLpK2xBdNi7f8QMsrRo3X+eUWg= Subject key identifier: 30:ED:50:4D:18:29:5B:53:28:34:93:6C:5E:56:0F:E5:36:75:FC:E3 Authority key identifier: A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD Certificate issuer: /CN=A91CACCA/serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Certificate serial: 34E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft Manifest number: 34E5 Signing time: Thu 04 Dec 2025 15:04:26 +0000 Manifest this update: Thu 04 Dec 2025 15:04:25 +0000 Manifest next update: Thu 11 Dec 2025 15:04:25 +0000 Files and hashes: 1: qZ9mmGknIBFUlstFlwLEOtxI1q0.crl (hash: i/ijCeCoGAhcRKO8ThT7loGNzLJWQBWkjnrCytTThY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:04:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13541 (0x34e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CACCA, serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Validity Not Before: Dec 4 15:04:25 2025 GMT Not After : Dec 11 15:04:25 2025 GMT Subject: CN=6931a2fa-01a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f4:56:f5:f8:8b:09:ef:d2:b8:f9:71:f6:de: af:11:93:22:e3:58:41:13:40:c7:1a:ae:78:51:3c: db:a9:59:f3:0b:cc:d6:81:28:9e:03:2b:e9:1f:e7: 25:00:8a:31:34:a6:e1:82:12:3d:e1:92:14:17:11: 1a:bd:9c:e7:00:6e:2d:9e:60:81:5a:cd:54:49:f1: c6:a6:11:07:79:c3:44:75:1a:ea:c3:52:2e:0c:b0: 38:3f:43:4c:0f:9a:8c:71:13:a6:49:6a:13:ba:80: 55:3a:17:85:43:80:82:87:a4:bd:f5:5e:dc:59:10: 9e:a4:e9:af:0e:5d:94:1e:39:f0:6b:84:2c:a9:62: 2a:66:18:62:26:9a:54:06:07:da:fb:93:83:bc:92: d7:99:1d:f6:cc:24:cd:7c:ec:64:d2:83:2b:01:e4: e7:29:55:41:90:ba:b4:01:bf:3f:c2:e6:b9:6a:49: 9a:7f:88:0c:01:4c:1d:88:81:0b:4a:b2:0e:eb:a9: 47:5f:87:39:8e:7d:97:ee:a5:6a:11:52:cd:84:d9: ac:14:f0:6b:94:e7:01:72:a4:27:c7:ee:5a:05:a8: 3b:6b:83:3f:b8:f6:b4:42:0f:8e:5a:18:14:64:d0: e1:d4:a0:a5:35:fe:93:01:21:77:aa:8b:71:45:72: 1b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:ED:50:4D:18:29:5B:53:28:34:93:6C:5E:56:0F:E5:36:75:FC:E3 X509v3 Authority Key Identifier: keyid:A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:96:d2:ed:d6:b4:93:cb:c5:40:cc:a5:14:e4:e2:3d:d1:19: fc:70:27:a0:95:c2:08:ba:ab:cc:04:1a:24:c8:8a:4c:53:bf: 40:c2:c8:de:a6:af:c0:06:65:bf:b3:5a:5f:4e:7c:96:c3:fd: ff:f5:db:6c:86:63:07:b7:c1:ea:c4:c7:00:49:8b:c1:da:b2: eb:3a:7d:d5:bd:79:1d:c8:5f:4a:ce:10:34:c4:cc:4f:9a:76: bf:66:a6:b9:a0:2e:0a:4a:0a:5d:8b:af:c9:38:59:71:d8:2d: 50:43:b1:78:73:9c:de:da:a4:42:c2:7d:6b:aa:5a:49:c6:40: b6:97:e9:0b:86:bb:46:5c:df:3d:ff:a1:15:8f:e7:71:d3:18: 94:70:f0:7c:1f:e8:17:4e:d2:45:92:db:96:83:4b:16:cc:1a: 1e:f4:a8:c5:81:20:f8:7e:d6:d0:fa:1f:c9:af:7f:ac:58:44: bb:d1:66:36:49:c6:fc:03:93:28:b2:27:64:bb:2a:ad:95:93: 0f:1d:61:08:99:b9:c7:1b:d9:a9:3f:c8:39:c0:ba:eb:a7:59: e3:23:cf:77:a4:8b:8f:6c:fa:4f:d4:0f:17:fd:12:0e:c8:e7: 75:40:48:7e:da:29:a3:fd:30:eb:2c:e1:68:44:9c:0b:24:8c: 9e:a5:91:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FDQ0ExMTAvBgNVBAUTKEE5OUY2Njk4NjkyNzIwMTE1NDk2Q0I0NTk3MDJDNDNB REM0OEQ2QUQwHhcNMjUxMjA0MTUwNDI1WhcNMjUxMjExMTUwNDI1WjAYMRYwFAYD VQQDEw02OTMxYTJmYS0wMWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/RW9fiLCe/SuPlx9t6vEZMi41hBE0DHGq54UTzbqVnzC8zWgSieAyvpH+cl AIoxNKbhghI94ZIUFxEavZznAG4tnmCBWs1USfHGphEHecNEdRrqw1IuDLA4P0NM D5qMcROmSWoTuoBVOheFQ4CCh6S99V7cWRCepOmvDl2UHjnwa4QsqWIqZhhiJppU Bgfa+5ODvJLXmR32zCTNfOxk0oMrAeTnKVVBkLq0Ab8/wua5akmaf4gMAUwdiIEL SrIO66lHX4c5jn2X7qVqEVLNhNmsFPBrlOcBcqQnx+5aBag7a4M/uPa0Qg+OWhgU ZNDh1KClNf6TASF3qotxRXIbiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDtUE0Y KVtTKDSTbF5WD+U2dfzjMB8GA1UdIwQYMBaAFKmfZphpJyARVJbLRZcCxDrcSNat MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUNDQS82MDg2RDc4MjFE QTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklCRlVsc3RGbHdMRU90eEkx cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaOW1tR2tuSUJGVWxzdEZsd0xFT3R4STFxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUNDQS82MDg2RDc4MjFEQTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklC RlVsc3RGbHdMRU90eEkxcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMltLt1rSTy8VAzKUU5OI90Rn8cCeglcIIuqvMBBokyIpMU79Awsje pq/ABmW/s1pfTnyWw/3/9dtshmMHt8HqxMcASYvB2rLrOn3VvXkdyF9KzhA0xMxP mna/Zqa5oC4KSgpdi6/JOFlx2C1QQ7F4c5ze2qRCwn1rqlpJxkC2l+kLhrtGXN89 /6EVj+dx0xiUcPB8H+gXTtJFktuWg0sWzBoe9KjFgSD4ftbQ+h/Jr3+sWES70WY2 Scb8A5MosidkuyqtlZMPHWEImbnHG9mpP8g5wLrrp1njI893pIuPbPpP1A8X/RIO yOd1QEh+2imj/TDrLOFoRJwLJIyepZER -----END CERTIFICATE-----Generated at Sat Dec 6 15:36:12 2025 by rpki-client